uses shlobj; type WELL_KNOWN_SID_TYPE = ( WinNullSid, WinWorldSid, WinLocalSid, WinCreatorOwnerSid, WinCreatorGroupSid, WinCreatorOwnerServerSid, WinCreatorGroupServerSid, WinNtAuthoritySid, WinDialupSid, WinNetworkSid, WinBatchSid, WinInteractiveSid, WinServiceSid, WinAnonymousSid, WinProxySid, WinEnterpriseControllersSid, WinSelfSid, WinAuthenticatedUserSid, WinRestrictedCodeSid, WinTerminalServerSid, WinRemoteLogonIdSid, WinLogonIdsSid, WinLocalSystemSid, WinLocalServiceSid, WinNetworkServiceSid, WinBuiltinDomainSid, WinBuiltinAdministratorsSid, WinBuiltinUsersSid, WinBuiltinGuestsSid, WinBuiltinPowerUsersSid, WinBuiltinAccountOperatorsSid, WinBuiltinSystemOperatorsSid, WinBuiltinPrintOperatorsSid, WinBuiltinBackupOperatorsSid, WinBuiltinReplicatorSid, WinBuiltinPreWindows2000CompatibleAccessSid, WinBuiltinRemoteDesktopUsersSid, WinBuiltinNetworkConfigurationOperatorsSid, WinAccountAdministratorSid, WinAccountGuestSid, WinAccountKrbtgtSid, WinAccountDomainAdminsSid, WinAccountDomainUsersSid, WinAccountDomainGuestsSid, WinAccountComputersSid, WinAccountControllersSid, WinAccountCertAdminsSid, WinAccountSchemaAdminsSid, WinAccountEnterpriseAdminsSid, WinAccountPolicyAdminsSid, WinAccountRasAndIasServersSid, WinNTLMAuthenticationSid, WinDigestAuthenticationSid, WinSChannelAuthenticationSid, WinThisOrganizationSid, WinOtherOrganizationSid, WinBuiltinIncomingForestTrustBuildersSid, WinBuiltinPerfMonitoringUsersSid, WinBuiltinPerfLoggingUsersSid, WinBuiltinAuthorizationAccessSid, WinBuiltinTerminalServerLicenseServersSid); {
    $EXTERNALSYM WELL_KNOWN_SID_TYPE} TWellKnownSidType = WELL_KNOWN_SID_TYPE; function CreateWellKnownSid(WellKnownSidType: WELL_KNOWN_SID_TYPE; DomainSid: PSID; pSid: PSID; var cbSid: DWORD): BOOL; stdcall;external advapi32 name 'CreateWellKnownSid'; function CheckTokenMembership(TokenHandle: THANDLE; SidToCheck: PSID; var IsMember: BOOL): BOOL; stdcall; external advapi32 name 'CheckTokenMembership'; Function GetProcessElevation(var pElevationType: TTokenElevationType; var pIsAdmin: LongBool): Boolean; const SECURITY_MAX_SID_SIZE = 68; VAR hToken: THandle; r: Cardinal; adminSID: array [0 .. SECURITY_MAX_SID_SIZE - 1] of byte; sidSize: Cardinal; e: Integer; hUnfilteredToken: THandle; Begin Result := False; sidSize := SizeOf(adminSID); if OpenProcessToken(GetCurrentProcess, TOKEN_QUERY, hToken) and Windows.GetTokenInformation(hToken, Windows.TokenElevationType, @pElevationType, SizeOf(pElevationType), r) and CreateWellKnownSid(WinBuiltinAdministratorsSid, nil, PSid(@adminSID), sidSize) then begin case pElevationType of TokenElevationTypeLimited: begin if GetTokenInformation(hToken, TokenLinkedToken, @hUnfilteredToken, SizeOf(hUnfilteredToken), r) and (CheckTokenMembership(hUnfilteredToken, PSid(@adminSID), pIsAdmin)) then begin Result := true; CloseHandle(hUnfilteredToken); end; end; else begin pIsAdmin := IsUserAnAdmin(); Result := true; end; end; end else begin e := GetLastError(); if e = 0 then begin GetTickCount; end; end; CloseHandle(hToken); End; 调用示例: procedure TForm4.Button1Click(Sender: TObject); var pIsAdmin: LongBool; pElevationType: TTokenElevationType; begin if GetProcessElevation(pElevationType, pIsAdmin) then begin case pElevationType of TokenElevationTypeLimited: ShowMessage('这是一个受限用户'); TokenElevationTypeFull: ShowMessage('这是一个拥有管理员权限的用户'); TokenElevationTypeDefault: ShowMessage('这是一个默认的用户'); end; end; end;